AMENDMENTS TO THE CLAIMS 



1 . (currently amended) A method for integrated audit and configuration comprising the 
computer-implemented steps of: 

receiving a request from a user to analyze first configuration information with a 

second set of configuration information; 
receiving the first configuration information; 

analyzing one or more parameters of the first configuration information with the 

second set of configuration information to result in creating and storing 

comparison information; 
displaying the comparison information including displaying parameters of the first 

configuration that do not conform with the parameters of the second 

configuration; 

choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more 
actions associated with the one or more action mechanisms; 

based on the user's selection, generating instructions and applying changes to the first 
configuration information; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein 
each of the one or more action mechanisms has separate properties and 
characteristics and performs separate changes to the first configuration file . 

2. (original) The method of Claim 1, where the second set of configuration information 
comprises a set of one or more parameter values; and where the step of analyzing one 
or more parameters of the first confirmation information comprises comparing the 
values of the one or more parameters in the first configuration information with 
corresponding parameter values from the set of one or more parameter values from 
the second set of configuration information. 
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3. (original) The method of Claim 1, where the second set of configuration information 
comprises a set of one or more rules; and where the step of analyzing one or more 
parameters of the first confirmation information comprises analyzing the one or more 
parameters of the first configuration information with respect to the set of one or 
more rules. 

4. (canceled) The method of Claim 1, where the one or more actions comprise one or 
more of toggle actions, fix actions, user input actions, wizard actions, and lockdown 
actions; and the one or more action mechanisms comprise one or more of toggle 
action mechanisms, fix action mechanisms, user input action mechanisms, wizard 
action mechanisms, and lockdown action mechanisms, wherein each of the action 
mechanisms have separate properties and characteristics and perform separate 
changes to the first configuration file. 

5. (original) The method of Claim 1, further comprising the steps of: 

receiving a second request from the user to perform one action of the one or more 

actions; and 
performing the one action. 

6. (original) The method of Claim 5, where the second request is one of one or more 
requests to perform actions, and where the method further comprises the step of 
performing the one or more corresponding actions based on the one or more requests 
to perform actions, where performing the one or more corresponding actions 
comprises constructing new configuration information based on the first 
configuration information and each action. 

7. (original) The method of Claim 6, further comprising the steps of: 

checking the new configuration against an object model of acceptable configurations; 
if the changes are not acceptable, displaying a summary of problems. 
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8. (original) The method of Claim 6, where the new configuration is the configuration 
for a configurable system, the configurable system includes one or more configurable 
devices; and where the method further comprises the steps of: 

receiving a third request to submit the changes; 

checking the new configuration information against an object model of acceptable 

configurations; and 
if the changes are acceptable, configuring the configurable system. 

9. (original) The method of Claim 1, where the first configuration information 
comprises the configuration for a configurable system; the configurable system 
includes one or more configurable devices; and the first configuration information is 
for each of the one or more configurable devices; and where the step of receiving the 
first configuration information comprises obtaining the first configuration information 
for each of the one or more configurable devices. 

10. (original) The method of Claim 1, where the second set of configuration information 
is one of one or more sets of second configuration information; and where the method 
further comprises the step of selecting the second set of configuration information 
based on the request from the user. 

11. (original) The method of Claim 1, where the second set of configuration information 
is one or one or more sets of second configuration information; and where the method 
further comprises the step of selecting the second set of configuration information 
based on one or more sets of configuration information for a device to be configured. 

12. (original) The method of Claim 5, where the one or more actions comprise one or more 
toggle actions, and the one or more action mechanisms comprise one or more toggle 
action mechanisms, and where the step of performing the action associated with a 
particular toggle action mechanism comprises changing a parameter value associated 
with the particular toggle action mechanism. 
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13. (original) The method of Claim 5, where the one or more actions comprise one or more 
fix actions, and the one or more action mechanisms comprise one or more fix action 
mechanisms, and where the step of performing the action associated with the fix action 
mechanism comprises changing a parameter value associated with a particular fix action 
mechanism based on a corresponding parameter value in the second set of configuration 
information. 

14. (original) The method of Claim 5, where the one or more actions comprise one or more 
user input actions, and the one or more action mechanisms comprise one or more user 
input action mechanisms, and where the step of performing the action associated with a 
particular user input action mechanism comprises the steps of: 

obtaining user input for a parameter value associated with the particular user input action 
mechanism; and 

changing the parameter value associated with the particular user input action mechanism 
based on the user input. 

15. (original) The method of Claim 5, where the one or more actions comprise one or more 
wizard actions, and the one or more action mechanisms comprise one or more wizard 
action mechanisms, and where the step of performing the action associated with a 
particular wizard action mechanism comprises the step of running a wizard associated 
with the particular wizard action mechanism. 

16. (currently amended) A method for integrated audit and configuration comprising the 
steps of: 

receiving a request from a user to analyze first configuration information with a second 

set of configuration information; 
obtaining the first configuration information; 
receiving the first configuration information; 

analyzing one or more parameters of the first configuration information with the second 
set of configuration information to result in creating and storing comparison 
information, where the second set of configuration information comprises a set of 
one or more rules; and where the step of analyzing one or more parameters of the 
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first confirmation information comprises analyzing the one or more parameters of 
the first configuration information with respect to the set of one or more rules; 
displaying the comparison information including displaying parameters of the first 
configuration that do not conform with the parameters of the second 
configuration; 

choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more actions 
associated with the one or more action mechanisms; 

receiving a second request from the user to perform one action of the one or more 
actions; and 

performing the one action, where performing the action comprises constructing new 

configuration information based on the first configuration information and the one 
action; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 

17. (currently amended) A method providing an integrated security audit and security 
configuration for a network device, comprising the computer-implemented steps of: 
receiving a request from a user to analyze first security configuration information with a 

second set of security configuration information; 
receiving the first security configuration information; 

analyzing one or more parameters of the first security configuration information with the 
second set of security configuration information to result in creating and storing 
comparison information, where the second set of security configuration 
information comprises a set of one or more rules; and where the step of analyzing 
one or more parameters of the first confirmation information comprises analyzing 
the one or more parameters of the first security configuration information with 
respect to the set of one or more rules; 



50325-0828 (CPOL 385861) 



6 



displaying the comparison information including displaying parameters of the first 
configuration that do not conform with the parameters of the second 
configuration; 

choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more actions 
associated with the one or more action mechanisms; 

receiving a second request from the user to perform one action of the one or more 
actions; and 

performing the one action, where performing the action comprises constructing new 
security configuration information based on the first security configuration 
information and the one action; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 

18. (currently amended) A machine-readable storage medium storing one or more sequences 
of instructions for integrated audit and configuration, which instructions, when executed 
by one or more processors, cause the one or more processors to carry out the steps of: 
receiving a request from a user to analyze first configuration information with a second 

set of configuration information; 
receiving the first configuration information; 

analyzing one or more parameters of the first configuration information with the second 
set of configuration information to result in creating and storing comparison 
information; 

displaying the comparison information including displaying parameters of the first 
configuration that do not conform with the parameters of the second 
configuration; 
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choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more actions 
associated with the one or more action mechanisms; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 

19. (currently amended) An apparatus for integrated audit and configuration, comprising: 
a network interface that is coupled to a data network for receiving one or more packet flows 

therefrom; 

a processor; 

one or more stored sequences of instructions which, when executed by the processor, 

cause the processor to carry out the steps of: 
receiving a request from a user to analyze first configuration information with a second 

set of configuration information; 
receiving the first configuration information; 

analyzing one or more parameters of the first configuration information with the second 
set of configuration information to result in creating and storing comparison 
information; 

displaying the comparison information including displaying parameters of the first 
configuration that do not conform with the parameters of the second 
configuration; 

choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more actions 
associated with the one or more action mechanisms; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
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of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 

20. (currently amended) An apparatus for integrated audit and configuration, comprising: 
means for receiving a request from a user to analyze first configuration information with 

a second set of configuration information; 
means for receiving the first configuration information; 

means for analyzing one or more parameters of the first configuration information with 

the second set of configuration information to result in creating and storing 

comparison information; 
means for displaying the comparison information including displaying parameters of the 

first configuration that do not conform with the parameters of the second 

configuration; 

means for choosing one or more action mechanisms to display to the user for each of the 
one or more parameters based on the comparison information including the non- 
conforming parameters; and 

means for enabling the user to select a displayed action mechanism to perform one or 
more actions associated with the one or more action mechanisms; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 

21. (currently amended) A machine-readable storage medium storing one or more sequences 
of instructions for integrated audit and configuration, which instructions, when executed 
by one or more processors, cause the one or more processors to carry out the steps of: 
receiving a request from a user to analyze first configuration information with a second 

set of configuration information; 
obtaining the first configuration information; 
receiving the first configuration information; 

analyzing one or more parameters of the first configuration information with the second 
set of configuration information to result in creating and storing comparison 
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information, where the second set of configuration information comprises a set of 
one or more rules; and where the step of analyzing one or more parameters of the 
first confirmation information comprises analyzing the one or more parameters of 
the first configuration information with respect to the set of one or more rules; 
displaying the comparison information including displaying parameters of the first 
configuration that do not conform with the parameters of the second 
configuration; 

choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more actions 
associated with the one or more action mechanisms; 

receiving a second request from the user to perform one action of the one or more 
actions; and 

performing the one action, where performing the action comprises constructing new 

configuration information based on the first configuration information and the one 
action; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 

22. (currently amended) A machine-readable storage medium storing one or more sequences 
of instructions for integrated security audit and security configuration, which instructions, when 
executed by one or more processors, cause the one or more processors to carry out the steps of: 

receiving a request from a user to analyze first security configuration information with a 
second set of security configuration information; 

receiving the first security configuration information; 

analyzing one or more parameters of the first security configuration information with the 
second set of security configuration information to result in creating and storing 
comparison information, where the second set of security configuration 
information comprises a set of one or more rules; and where the step of analyzing 
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one or more parameters of the first confirmation information comprises analyzing 
the one or more parameters of the first security configuration information with 
respect to the set of one or more rules; 
displaying the comparison information including displaying parameters of the first 
configuration that do not conform with the parameters of the second 
configuration; 

choosing one or more action mechanisms to display to the user for each of the one or 
more parameters based on the comparison information including the non- 
conforming parameters; 

enabling the user to select a displayed action mechanism to perform one or more actions 
associated with the one or more action mechanisms; 

receiving a second request from the user to perform one action of the one or more 
actions; and 

performing the one action, where performing the action comprises constructing new 
security configuration information based on the first security configuration 
information and the one action; 

wherein the one or more action mechanisms comprise at least one from a group 

consisting of toggle actions, wizard actions, and lockdown actions; wherein each 
of the one or more action mechanisms has separate properties and characteristics 
and performs separate changes to the first configuration file . 



23. (new) The method of Claim 1, further comprising: 

an acceptability mechanism, containing an object model of the constraints of each of the 

parameters and how they affect the device as a whole; which checks the acceptability of 
any new configuration including the interrelation of all the parameter values. 
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